Installations

npm install get-spdx-license-ids

Developer Guide

BETA

Typescript

No

Module System

N/A

Node Version

9.4.0

NPM Version

5.6.0 Score

64.7

Supply Chain

57.1

Quality

73.4

Maintenance

100

Vulnerability

100

License

Pull Requests

Open

0

Total

1

Closed

0

Merged

1

Issues

Open

0

Total

3

Closed

3

Releases

Unable to fetch releases

Contributors

2

Unable to fetch Contributors

View all 2 contributors

Languages

1

JavaScript

JavaScript (100%)

Developer

shinnn

Download Statistics

Total Downloads

78,999

Last Day

4

Last Week

20

Last Month

43

Last Year

4,332

GitHub Statistics

22 Commits

3 Forks

1 Watching

1 Branches

2 Contributors

Bundle Size

14.16 kB

Minified

4.81 kB

Minified + Gzipped

Bundlephobia

Maintainers

1

Package Meta Information

Latest Version

2.1.0

Package Id

get-spdx-license-ids@2.1.0

Size

2.48 kB

NPM Version

5.6.0

Node Version

9.4.0

Total Downloads

Cumulative downloads

Total Downloads

78,999

Last day

100%

4

Compared to previous day

Last week

300%

20

Compared to previous week

Last month

-24.6%

43

Compared to previous month

Last year

-75.2%

4,332

Compared to previous year

Daily Downloads

Weekly Downloads

Monthly Downloads

Yearly Downloads

Dependencies

2

fettuccine-class inspect-with-kind

Dev Dependencies

4

@shinnn/eslint-config-node eslint nyc tape

Versions

get-spdx-license-ids

A Node.js module to get an array of the latest SPDX license identifiers from spdx.org

1const getSpdxLicenseIds = require('get-spdx-license-ids');
2
3(async () => {
4  const ids = await getSpdxLicenseIds();
5  //=> ['0BSD', 'AAL', 'Abstyles', 'Adobe-2006', 'Adobe-Glyph', 'ADSL', 'AFL-1.1', 'AFL-1.2', ...]
6})();

Installation

Use npm.

npm install get-spdx-license-ids

API

1const getSpdxLicenseIds = require('get-spdx-license-ids');

getSpdxLicenseIds([options])

options: Object (request options without json option that defaults to true)
Return: Promise<Array<string>>

It retrieves an array of non-deprecated SPDX license identifiers from https://spdx.org/licenses/licenses.json.

1(async () => {
2  const ids = await getSpdxLicenseIds();
3  ids.includes('MIT'); //=> true
4  ids.includes('ISC'); //=> true
5
6  ids.includes('GPL-1.0'); //=> false
7})

getSpdxLicenseIds.deprecated([options])

Retrieves deprecated IDs only.

1(async () => {
2  const deprecatedIds = await getSpdxLicenseIds.deprecated();
3  deprecatedIds.includes('MIT'); //=> false
4  deprecatedIds.includes('ISC'); //=> false
5
6  deprecatedIds.includes('GPL-1.0'); //=> true
7})();

getSpdxLicenseIds.all([options])

Retrieves both deprecated and non-deprecated IDs in a single array.

1(async () => {
2  const allIds = await getSpdxLicenseIds.all();
3  allIds.includes('MIT'); //=> true
4  allIds.includes('ISC'); //=> true
5  allIds.includes('GPL-1.0'); //=> false
6})();

getSpdxLicenseIds.both([options])

Retrieves both deprecated and non-deprecated IDs in two separate arrays.

1(async () => {
2  const pair = await getSpdxLicenseIds.both();
3  pair.length; //=> 2
4
5  const [valid, deprecated] = pair;
6
7  valid.includes('MIT'); //=> true
8  valid.includes('ISC'); //=> true
9
10  valid.includes('GPL-1.0'); //=> false
11
12  deprecated.includes('MIT'); //=> false
13  deprecated.includes('ISC'); //=> false
14
15  deprecated.includes('GPL-1.0'); //=> true
16})();

License

No vulnerabilities found.

10

Binary-Artifacts

Determines if the project has generated executable (binary) artifacts in the source repository.

10

License

Determines if the project has defined a license.

0

Code-Review

Determines if the project requires human code review before pull requests (aka merge requests) are merged.

0

Maintained

Determines if the project is "actively maintained".

0

CII-Best-Practices

Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.

0

Security-Policy

Determines if the project has published a security policy.

0

Fuzzing

Determines if the project uses fuzzing.

0

Branch-Protection

Determines if the default and release branches are protected with GitHub's branch protection settings.

0

SAST

Determines if the project uses static code analysis.

0

Vulnerabilities

Determines if the project has open, known unfixed vulnerabilities.

Score

1.7

/10

Last Scanned on 2025-01-06

The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.

Learn More